Symantec Corporation or its affiliates in other countries. Other names may be trademarks of their respective owners. Symantec Mail Security for SMTP 5.0 is protected under U.S. Patent Nos. 6,052,709; 5,999,932; and 6,654,787. The product described in this document is distributed under licenses restricting its use, copying, distribution, and decompilation/reverse engineering.
Technical support As part of Symantec Security Response, the Symantec global Technical Support group maintains support centers throughout the world. The Technical Support group’s primary role is to respond to specific questions on product feature/ function, installation, and configuration, as well as to author content for our Web-accessible Knowledge Base.
Recent software configuration changes and/or network changes ■ Customer Service To contact Enterprise Customer Service online, go to www.symantec.com, select the appropriate Global Site for your country, then choose Service and Support. Customer Service is available to assist with the following types of issues: Questions regarding product licensing or serialization ■...
Introducing Symantec Mail Security for SMTP About Symantec Mail Security for SMTP ............8 What’s new in Symantec Mail Security for SMTP ..........8 New features for all users ................9 Changes for Symantec Mail Security for SMTP users ......10 Changes for Symantec Brightmail Antispam users .......
Page 6
6 Contents Areas of localization .................... 43 Importing configuration files ..............44 Configuring system locale ................44 Uninstalling Symantec Mail Security for SMTP ..........46 Uninstalling from Windows ............... 46 Uninstalling from Linux and Solaris ............46 Appendix A Integrating Symantec Mail Security with Symantec Security Information Manager About Symantec Security Information Manager ...........
Security for SMTP This chapter includes the following topics: About Symantec Mail Security for SMTP ■ What’s new in Symantec Mail Security for SMTP ■ Components of Symantec Mail Security for SMTP ■ How Symantec Mail Security for SMTP works ■...
What’s new in Symantec Mail Security for SMTP All users will find significant new features in this release of Symantec Mail Security for SMTP. You will also find familiar features, in many cases improved and expanded. In some cases the names of features are the same; in some cases the names have changed, and the changes are noted in this chapter.
What’s new in Symantec Mail Security for SMTP New features for all users Table 1-1 lists features that are new for both Symantec Mail Security for SMTP users and Symantec Brightmail Antispam users. Table 1-1 New features for Symantec Mail Security for SMTP and Symantec Brightmail Antispam...
Changes for Symantec Mail Security for SMTP users For users of Symantec Mail Security for SMTP 4.1, Version 5.0 provides a host of expanded and improved capabilities. In addition to the new features listed in Table 1-1, additional new features for Symantec Mail Security for SMTP users...
Settings > Virus > Exclude Scanning tab Routing Settings > Hosts > Edit > SMTP tab Discontinued features The following Symantec Mail Security for SMTP 4.1 features are not included in Symantec Mail Security for SMTP 5.0: Auto-generated whitelist ■...
Changes for Symantec Brightmail Antispam users Although the product name has changed, if you were a Symantec Brightmail Antispam user you will find the user interface for Symantec Mail Security for SMTP 5.0 quite familiar. Most features are named similarly, and the organization of the user interface is quite similar.
You can deploy Symantec Mail Security for SMTP in different configurations to best suit the size of your network and your email processing needs. Each Symantec Mail Security for SMTP host can be deployed in the following ways: Scanner – Deployed as a Scanner, a Symantec Mail Security for SMTP host ■...
Page 14
Scanner and Control Center – A single Symantec Mail Security for SMTP ■ host performs both functions. Note: Symantec Mail Security for SMTP does not provide mailbox access for end users or message storage, and is not intended for use as the only MTA in your email infrastructure.
How Symantec Mail Security for SMTP works How Symantec Mail Security for SMTP works Your Symantec Mail Security for SMTP installation processes a email message as follows. For the sake of discussion, our sample message passes through the Filtering Engine to the Transformation Engine without being rejected.
The Transformation Engine performs per-recipient actions based on ■ filtering results and configurable Group Policies. Where to get more information In addition to this Installation Guide, your Symantec Mail Security for SMTP product comes with the following documentation: Symantec Mail Security for SMTP Planning Guide ■...
This chapter includes the following topics: Before you install ■ System requirements ■ Installing on Windows ■ Installing on Solaris and Linux ■ Setting up ■ Accessing the Control Center ■ Areas of localization ■ Uninstalling Symantec Mail Security for SMTP ■...
18 Installing Symantec Mail Security for SMTP Before you install Before you install Before you install Symantec Mail Security for SMTP, you must perform some pre-installation tasks. Before you install on any platform The following are pre-installation tasks for both Windows and Linux/Solaris: Disable other antivirus programs ■...
Page 19
ESTABLISHED Note: If the port is in use by the IIS SMTP Virtual Server, you do not need to remove it, as it is required for, and operates compatibly with Symantec Mail Security for SMTP. To determine whether the port is in use by IIS SMTP Virtual Server, click Programs>Administrative Tools>Internet Information Services, then...
Page 20
Saving data from Symantec Mail Security for SMTP 4.x (optional) If you wish to keep data from your existing installation of Symantec Mail Security for SMTP 4.x for use in this version, you must save the data files from your existing installation before you uninstall it.
The IIS SMTP Virtual Server is installed ■ Installing IIS SMTP Virtual Server Symantec Mail Security for SMTP is integrated with IIS SMTP Virtual Server on Windows. You must install this Windows Component before you run the Symantec Mail Security for SMTP installer.
Page 22
Use the following commands: $ su Password: <your_root_password> # groupadd bmi # groupadd avdefs # useradd -c "dummy user for SMS for SMTP" -d /opt/Symantec/ SMSSMTP/scanner -m -g bmi mailwall To create users and groups on Linux Use the following commands: ◆...
# useradd -c "dummy user for SMS for SMTP" -d /opt/Symantec/ SMSSMTP/scanner -m -r -G bmi,avdevs mailwall Note: If you are reinstalling this version of Symantec Mail Security for SMTP on this machine, and did not explicitly remove the users and groups that you created for the previous installation, you do not have to recreate them.
Solaris 10 ■ Because the tar file names exceed the 40-character file name limit of native Solaris tar, GNU tar is required to install Symantec Mail Security for SMTP. GNU tar for Solaris is available from http://www.sunfreeware.com other Web sites.
Read the licensing agreement, select the radio button to indicate that you accept the licensing agreement, and then click Next. The Installation Type panel is displayed. You can choose to install Symantec Mail Security for SMTP in the following configurations:...
Page 26
26 Installing Symantec Mail Security for SMTP Installing on Windows Typical, which installs both the Scanner and Control Center on the ■ same machine in a location you specify, with subcomponents under that location, or Custom, which allows you to install a Scanner or the Control Center ■...
A log of the installation is placed in C:\Program Files\Symantec\SMSSMTP\install_log.txt Installing on Solaris and Linux The following section describes how to install Symantec Mail Security for SMTP on Solaris and Linux. Note: If you plan to install both the Control Center and a Scanner on the same machine, you must install them at the same time, running the installation program only once.
Page 28
The Installation Type screen is displayed. You can choose to install Symantec Mail Security for SMTP in the following configurations: Typical , which installs both the Scanner and Control Center on the ■...
Page 29
Installing Symantec Mail Security for SMTP Installing on Solaris and Linux Specify an alternate location, or type accept the default value, and then then type to proceed. The Log Directory screen is displayed. All log data for this Scanner will be stored in the directory you specify.
30 Installing Symantec Mail Security for SMTP Setting up Setting up If you installed Control Center, you will now log into the Control Center and run the Setup Wizard. Many of the site-wide settings that you will specify as you use the Setup Wizard are actually site defaults that you can later vary for each Scanner you add.
32. To complete registration, you need one or more license files (.slf files) provided to you by Symantec (depending on the product features you have purchased, you may receive multiple license files). Place the file(s) on the computer from which you are accessing the Control Center.
Click Next. The System Locale panel is displayed. Specify the locale that Symantec Mail Security for SMTP should use for formatting numbers, dates, and times, and then click Next. If you are setting up a Control Center-only installation, you will now see the Setup Wizard Summary panel.
Page 33
Installing Symantec Mail Security for SMTP Setting up install a Scanner on that machine, and then follow the procedure described in “Setting up a Scanner” on page 35. If you are setting up a Control Center and a Scanner on this machine, ■...
Page 34
34 Installing Symantec Mail Security for SMTP Setting up On the Inbound Mail Filtering - Local Relay panel, specify the internal host to which this Scanner will relay inbound mail after filtering is complete. You can define a new host or select a host from the list. A typical value is a downstream mail server such as your corporate mail server.
If not, click Back to revise your settings, or Cancel to end without saving any changes. When the configuration is complete, the Scanner will contact Symantec to download the latest antispam filters and antivirus definitions, and the default antivirus definition download schedule will be in place (if you have installed an antivirus license).
Page 36
Select your .slf file and click Open to return to the License Registration page. If your Scanner will be using a proxy server for communications with Symantec, check the Use HTTP Proxy box and complete the proxy configuration fields. Click Register.
Page 37
Installing Symantec Mail Security for SMTP Setting up If you specify one or more IP addresses, you must include the IP address of the Control Center so that Spam Quarantine and Suspect Virus Quarantine can release messages. After you add the first entry, the IP address of the Control Center is added automatically and selected.
If not, click Back to revise your settings, or Cancel to end without saving any changes. When the configuration is complete, the Scanner will contact Symantec to download the latest antispam filters and antivirus definitions, and the default antivirus definition download schedule will be in place (if you have installed an antivirus license).
Installing Symantec Mail Security for SMTP Setting up Setting mail filtering policies When you set up Symantec Mail Security for SMTP, a set of ready-made default message filtering policies are in place. You can use these policies or customize them.
40 Installing Symantec Mail Security for SMTP Accessing the Control Center Accessing the Control Center Follow these instructions to begin using the Control Center. To log in as an administrator Access your Control Center from a browser. The default login address is:...
Page 41
Accessing the Control Center To log in as an end user with an iPlanet or Sun ONE Directory Server Note: To do this, LDAP authentication must be enabled. Refer to the Symantec Mail Security for SMTP Administration Guide for more information on LDAP support.
Page 42
42 Installing Symantec Mail Security for SMTP Accessing the Control Center Below the text entry fields you will see a list of names of languages. The name of the language currently in use is displayed in normal text. The names of other languages are displayed underlined and highlighted. Click the name of another language to use that language instead.
Installing Symantec Mail Security for SMTP Areas of localization The mail address on the line starting with SMTP: in capitals is your primary email address. Logging out Follow these steps to log out. To log out Click the Log Out link in the upper right corner of the current page.
44 Installing Symantec Mail Security for SMTP Areas of localization Under Policies > Compliance, the conditions for From: address, ■ To: address, CC: address, BCC: address, Envelope sender, Envelope recipient, and Envelope HELO. Also under Policies > Compliance, any text entered under Actions.
Page 45
Installing Symantec Mail Security for SMTP Areas of localization Using the dropdown list in the System Locale section of the page, select a language from the list.
An uninstaller is included in the Symantec Mail Security for SMTP product when you install it on your Windows machine. To uninstall Symantec Mail Security for SMTP from a Windows machine Click Start > Programs > Symantec > SMSSMTP > Uninstall SMS for SMTP ◆ The uninstaller is launched.
Page 47
Uninstalling Symantec Mail Security for SMTP The users and groups you created before installing are not removed. If you are planning to reinstall Symantec Mail Security for SMTP, you do not have to recreate them. The following directories/files will remain: common/ install_log.txt...
Page 48
48 Installing Symantec Mail Security for SMTP Uninstalling Symantec Mail Security for SMTP...
Uninstalling Information Manager components ■ About Symantec Security Information Manager In addition to using the Symantec Mail Security for SMTP logging features, you can also log events to the Symantec Security Information Manager appliance for event management and correlation. Symantec Security Information Manager...
For more information about interpreting events in the Information Manager and on the event management capabilities of the Information Manager, see the Symantec Security Information Manager documentation. Symantec Mail Security for SMTP can send the following types of events to the Information Manager: Firewall events ■...
Firewall events that are sent to the Information Manager Table A-1 lists the firewall events that Symantec Mail Security for SMTP can send to the Information Manager. Table A-1 Firewall events that are sent to the Information Manager...
52 Integrating Symantec Mail Security with Symantec Security Information Manager Interpreting events in the Information Manager Table A-2 Definition Update events that are sent to the Information Manager Event ID Severity Event class Rule Description (SES_EVENT_<Unique ID>) (Reason sent) SES_EVENT_LIST_UPDATE (92009)
Page 53
Integrating Symantec Mail Security with Symantec Security Information Manager Interpreting events in the Information Manager Table A-4 Administration events that are sent to the Information Manager Event ID Severity Rule Description Event class (SES_EVENT_<Unique ID>) (Reason sent) SES_EVENT_CONFIGURATION_FAILED (92058) Warning...
Information Manager The logging of events to the Information Manager is in addition to, and independent of, the logging of events within the Symantec Mail Security for SMTP logging feature. To configure logging to the Information Manager, you must complete the...
The Symantec Security Information Manager Web configuration interface provides a link that you can use to download and install the SIP Integration Wizard. The wizard installs SSIM Integration Packages (SIPs) for Symantec Mail Security for SMTP. The SIP contains the configuration settings and event schemas that the Information Manager requires to recognize and log events from Symantec Mail Security for SMTP.
Page 56
56 Integrating Symantec Mail Security with Symantec Security Information Manager Installing and configuring event logging to the Information Manager The Integration Wizard is displayed. In the Integration Wizard, click Next until you see the Directory Domain Administrator Information panel. In the Directory Domain Administrator Information panel, enter the specific information about the Domain Administrator and the Directory, and then click Next.
SSIM-enabled security product, you must run the installer to register Symantec Mail Security for SMTP. You must install the local SSIM Agent on all computers on which Symantec Mail Security for SMTP is installed.
Ensure that you are logged into the Symantec Mail Security for SMTP machine on the console or via SSH as an administrative user. Insert the Symantec Mail Security for SMTP product CD into the drive and execute the following command from the product CD: \collectors\sms_smtp\install\install.bat...
Page 59
Integrating Symantec Mail Security with Symantec Security Information Manager Installing and configuring event logging to the Information Manager information, refer to the Symantec Security Information Manager documentation. Note: You must ensure that the Configure as: setting is configured exactly as indicated in the Value column.
Ensure that you are logged into the Symantec Mail Security for SMTP machine on the console or via SSH as an administrative user. Insert the Symantec Mail Security for SMTP product CD into the drive and execute the following command from the product CD \collectors\sms_smtp\install\uninstall.bat...
Page 61
Integrating Symantec Mail Security with Symantec Security Information Manager Uninstalling Information Manager components Insert the Symantec Mail Security for SMTP product CD into the drive and ungzip and untar the contents of the file into the folder. Agents/Unix.tar.gz Agent/ Navigate to the...
Page 62
62 Integrating Symantec Mail Security with Symantec Security Information Manager Uninstalling Information Manager components...
Appendix Sample options file The following is a sample options file for use with the command line -options installation flag. You must edit the contents of this file to replace the default values provided with the values you want to use for your installation. The default values are for Linux/Solaris installations, but you can replace them with the Windows-appropriate values.
Page 64
# Custom Dialog: License # The initial state of the License panel. The accept and reject # option states are stored as Variables and must be set with -V -V LICENSE_REJECT_BUTTON="false" ################################################################### # Symantec Mail Security for SMTP 5.0 Install Location...
Page 65
# contains spaces, enclose it in double-quotes. For example, to # install the product to C:\Program Files\My Product, use -P installLocation="C:\Program Files\My Product" -P installLocation="/opt/Symantec/SMSSMTP" ################################################################### # Custom Dialog: InstallType # The Installation Type to be used when installing the product.
Page 66
66 Sample options file -P feature1.active=true ################################################################### # "Scanner" Feature # The selection state of the "Scanner" feature. Legal values are: true - Indicates that the feature is selected for installation false - Indicates that the feature is not selected for # installation # For example, to select "Scanner"...
8 new features 9 registration Symantec Brightmail Antispam, new or initial, Scanners 36 changed features from 12 Symantec Mail Security for SMTP, new or changed features 10 files, importing 44 Scanners 13 filters registration, initial 36 settings 33, 36...
Page 68
68 Index Symantec Security Information Manager about 49 events 50 install Agent 57 time settings 32 uninstall Symantec Security Information Manager 60 UTF-8, importing UTF-8 characters 44...
Need help?
Do you have a question about the 10547829 - Mail Security For Smtp 5.0 Smb and is the answer not in the manual?
Questions and answers